Active directory TCP UDP ports

G

Guest

Hi,

I'm deploying a new AD infrastructure Windows2003 R2 based. I need to use
the windows firewall. Can one tell me which TCP UDP ports should be
configured.The architecture is mono forest and mono domain.
I already configured ports describe here
http://support.microsoft.com/kb/179442/en-us
but the replication between two DC's is not working:a test user create in
one DC's isn't replicate to the other one.
Can you help me ?

Regards

Marc.
 
P

Paul Bergson [MVP-DS]

This document is correct and I have defined firewall rules per this
document. My bet is you haven't defined the rpc high ports correctly.

So why don't you define what ports you have defined as well as any changes
you have made to the registry.

Take a look at:
http://75.163.18.76:443/windows/articles/FirewallReplication.html

This doc should get you through your problems.



--
Paul Bergson
MVP - Directory Services
MCT, MCSE, MCSA, Security+, BS CSci
2003, 2000 (Early Achiever), NT

http://www.pbbergs.com

Please no e-mails, any questions should be posted in the NewsGroup
This posting is provided "AS IS" with no warranties, and confers no rights.
 
J

Jorge de Almeida Pinto [MVP - DS]

have a look at:

Perform Active Directory Replication
The type of network traffic that is required for replication differs based
on whether the replication is between domain controllers of one or more
domains. Both types of replication require the following:
• Directory service RPC traffic (configurable directory service RPC port)
• LDAP (389/tcp or 636/tcp if using SSL)
• LDAP ping (389/udp)
• Kerberos (88/tcp, 88/udp)
• DNS (53/tcp, 53/udp)
• SMB over IP traffic (445/tcp, 445/udp)

and
MS-KBQ319553_How to Restrict FRS Replication Traffic to a Specific Static
Port
MS-KBQ224196_Restricting Active Directory Replication Traffic to a Specific
Port

--

Cheers,
(HOPEFULLY THIS INFORMATION HELPS YOU!)

# Jorge de Almeida Pinto # MVP Windows Server - Directory Services

BLOG (WEB-BASED)--> http://blogs.dirteam.com/blogs/jorge/default.aspx
BLOG (RSS-FEEDS)--> http://blogs.dirteam.com/blogs/jorge/rss.aspx
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

which tcp ports...... 2
Open ports? a member server behind a firewall. 7
AD replication over sites & adding SVR to domain over Firewall. 3
Firewall and Windows 2000 1
Active Directory & TCP/UDP port 1
problem with network share and Windows FireWall 4
Active Directory Replication 3
Problem with TCP Port 389 LDAP 1

Top